DefiLlama Pro OpenAPI Skill

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed read-only helper for DefiLlama Pro analytics, with normal cautions around storing and logging an API key.

Install only if you are comfortable storing a DefiLlama Pro API key in UXC. Because the API key appears in the request path, avoid pasting raw commands or daemon logs into chats or tickets unless the key is sanitized, and consider pinning or reviewing the OpenAPI schema URL before use.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Rogue AgentSelf-Modification, Session Persistence
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (2)

Autonomous Decision Making

Medium

Category: Excessive Agency
Content: - Keep automation on the JSON output envelope; do not use `--text`. - Parse stable fields first: `ok`, `kind`, `protocol`, `data`, `error`. - Treat this v1 skill as read-only. Do not imply wallet, trading, or admin support. - This skill assumes the Pro host and key-in-path auth model. Do not bind the same credential to a different path shape without checking the upstream docs first. - API keys are sensitive because they appear in the request path. Use `--secret-env` or `--secret-op`, not shell history literals, when possible. - Avoid sharing raw daemon logs when troubleshooting this integration. The key is part of the request path, so if you inspect `~/.uxc/daemon/daemon.log`, sanitize, rotate, or delete the log after debugging and avoid verbose logging unless necessary. - `defillama-pro-openapi-cli <operation> ...` is equivalent to `uxc https://pro-api.llama.fi --schema-url <defillama_pro_openapi_schema> <operation> ...`.
Confidence: 75% confidence
Finding: without checking

Session Persistence

Medium

Category: Rogue Agent
Content: This skill does **not** cover: - write operations or account management - the public unauthenticated host variants - the full DefiLlama Pro endpoint surface
Confidence: 60% confidence
Finding: write operations or account management - the public unauthenticated host variants - the full DefiLlama Pro endpoint surface ## Authentication DefiLlama Pro places the API key in the request path, be

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal